Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: Ehm3ZRmrEq5MbGySAERPV4Ok9afOT3mdwuoUsshYqCE=
Subject key identifier: A7:20:A0:B1:08:3F:E8:92:80:23:6B:EC:0A:82:BA:BE:AC:1D:92:76
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 0199FB4585FE9FBB624C113FE6EF8943D96E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 1480
Signing time: Sun 19 Oct 2025 07:01:01 +0000
Manifest this update: Sun 19 Oct 2025 07:01:01 +0000
Manifest next update: Mon 20 Oct 2025 07:01:01 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: p43Px/G1n0Eu9Rj8nvqENAY0Jf76N+HNU/s8XT7mEkw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:85:fe:9f:bb:62:4c:11:3f:e6:ef:89:43:d9:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: Oct 19 07:01:01 2025 GMT
Not After : Oct 20 07:01:01 2025 GMT
Subject: CN=a720a0b1083fe89280236bec0a82babeac1d9276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3c:4c:9b:1d:08:21:ec:6c:5b:4e:68:5c:b3:
3f:9d:bd:7d:b9:f1:e6:77:39:21:2e:02:e3:74:3a:
8f:5d:47:61:95:4f:b8:76:c9:35:d1:1b:e2:4c:63:
c6:b3:14:72:09:9d:91:df:d3:44:83:4d:95:b4:10:
5b:6e:0b:7e:8d:df:92:7a:fc:b3:ea:57:63:11:d7:
14:df:a9:1e:ae:a6:92:8a:66:d3:34:bf:53:e9:7c:
9f:a5:a3:c1:b3:51:e5:1b:8e:3f:52:3e:0a:ef:6d:
e2:0d:df:52:82:74:d8:2f:3b:cf:c0:3b:ea:4a:0e:
ae:51:1f:de:0c:e8:a7:54:4c:be:f9:17:18:b3:0e:
57:a5:65:6f:1f:c4:d8:36:e1:88:c8:fd:62:51:14:
b8:d7:bb:29:19:ef:ae:16:e2:54:ef:42:d0:15:0e:
68:81:72:f1:5c:77:c6:54:77:f8:a8:0b:a4:a1:8d:
c8:70:12:4d:44:19:8a:ec:f4:cf:c5:d7:fc:c2:45:
20:cf:d2:83:eb:bc:ab:c6:b0:74:e1:0c:db:9e:56:
0d:30:0b:db:ea:e0:fa:8a:26:9c:b7:d5:42:0f:18:
7b:d1:25:fb:6d:fd:9d:fa:d3:8b:d9:87:e3:84:a7:
50:1b:50:e2:42:ff:c9:00:0d:42:46:90:21:74:40:
be:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:20:A0:B1:08:3F:E8:92:80:23:6B:EC:0A:82:BA:BE:AC:1D:92:76
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:76:d5:03:33:d4:69:1f:87:28:bb:54:09:a2:5e:ff:ca:13:
0f:60:8e:53:61:3d:63:d9:95:4c:48:a0:a5:86:5d:38:80:5b:
9d:06:9b:94:be:90:1c:95:c6:90:4e:12:77:a3:8e:b4:b8:ba:
8d:d6:e3:22:47:c2:3e:1a:60:75:30:6e:b9:50:be:f9:ac:e1:
2d:0d:c3:22:df:86:b1:cf:66:bf:b9:38:4f:1d:68:c6:a8:aa:
09:90:8f:0b:07:24:de:64:33:a7:3d:7d:c8:ca:88:de:3f:e2:
d6:41:0d:5c:b4:22:84:a2:a1:ee:c2:e7:1a:b3:82:94:0c:80:
1a:eb:40:85:41:a8:b3:43:ee:ab:52:3d:37:36:76:c8:98:04:
7d:0a:09:a4:de:fb:4a:84:95:22:ce:58:a4:a6:c2:c2:f3:95:
81:c3:33:14:6d:b0:96:23:eb:96:04:7b:5f:3d:0e:cd:5f:d0:
cf:80:9d:df:68:91:7d:f0:10:70:ad:c0:61:70:62:9a:c9:88:
c2:70:06:fd:74:c4:f8:b9:1d:cc:d8:4d:cf:68:26:b4:41:d4:
d4:23:02:bd:cf:bc:1f:e6:6f:cd:8a:fb:b0:26:8e:2f:87:7e:
63:17:9c:09:be:1c:7d:f9:93:28:42:87:93:ac:b4:bd:e1:75:
b9:3d:9b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:01:12 2025 by rpki-client